Cloud Security Command Center beta

A comprehensive security and data risk platform for GCP

Actionable security insights

Cloud Security Command Center helps security teams gather data, identify threats, and act on them before they result in business damage or loss. It offers deep insight into application and data risk so that you can quickly mitigate threats to your cloud resources and evaluate overall health. With Cloud Security Command Center, you can view and monitor an inventory of your cloud assets, scan storage systems for sensitive data, detect common web vulnerabilities, and review access rights to your critical resources, all from a single, centralized dashboard.

Powerful insights to help enhance your security posture

Cloud Security Command Center provides powerful security insights about your cloud resources. With this tool, security teams can answer questions like “Which cloud storage buckets contain PII?”, “Do I have any buckets that are open to the Internet?” and “Which cloud applications are vulnerable to XSS vulnerabilities?” By applying ongoing security analytics and threat intelligence, enterprises can assess their overall security health in a central dashboard and take immediate action on security risks.

Find out which storage buckets contain sensitive and regulated data using the Cloud DLP API. Help prevent unintended exposure and ensure access is based on need-to-know. The DLP API integrates automatically with Cloud Security Command Center.

Help ensure the appropriate access control policies are in place across your cloud resources and get alerted when policies are misconfigured or unexpectedly change. Forseti, the open source security toolkit for Google Cloud Platform, integrates with Cloud Security Command Center.

Cloud Security Command Center Pricing

There is no separate charge for using Cloud Security Command Center. However, the use of some Cloud Security Command Center detectors, such as Cloud Security Scanner, impacts App Engine instance quota limits, bandwidth (traffic) charges, and quotas for API calls to App Engine services. Learn more in the Security Scanner pricing guide. In addition, the Cloud DLP API detector is priced by usage. Learn more on the DLP API pricing page.